Meet Brain Cipher — The new ransomware behind Indonesia’s data center attack

Meet Brain Cipher — The new ransomware behind Indonesia's data center attack

June 29, 2024 at 11:02AM

Brain Cipher, a new ransomware operation, has targeted organizations globally. In a recent high-profile attack on Indonesia’s temporary National Data Center, over 200 government agencies were disrupted. The ransomware demanded $8 million in Monero cryptocurrency and threatened to leak allegedly stolen data. Brain Cipher also launched a data leak site and uses a known encryption algorithm with little chance of file recovery.

Based on the meeting notes, here are the key takeaways:

1. The new Brain Cipher ransomware operation has begun targeting organizations worldwide, gaining media attention for a recent cyberattack on Indonesia’s temporary National Data Center.
2. The cyberattack encrypted the government’s servers, disrupting over 200 government agencies and online services such as immigration, passport control, and event permits.
3. Brain Cipher demanded $8 million in Monero cryptocurrency to receive a decryptor and not leak allegedly stolen data.
4. The ransomware gang has launched a data leak site and demands ransoms ranging between $20,000 and 8 million dollars.
5. Brain Cipher is based on the leaked LockBit 3 encryptor and unless tweaked, there are no known ways to recover files for free.
6. The threat actors gain Windows domain admin credentials to spread laterally within a corporate network before deploying the ransomware.

Please let me know if you need any additional information or further details on any of the key points.

Full Article